From 6afad0426f9984ae0886001ff22e917c94bf8cc6 Mon Sep 17 00:00:00 2001 From: ack-bot Date: Sat, 12 Oct 2024 00:14:45 +0000 Subject: [PATCH] ack-documentdb-controller artifacts for version 1.0.1 Signed-off-by: ack-bot --- .../1.0.1/bundle.Dockerfile | 21 + ...ntdb-controller.clusterserviceversion.yaml | 312 ++++++++++ ...documentdb-metrics-service_v1_service.yaml | 16 + ...der_rbac.authorization.k8s.io_v1_role.yaml | 16 + ...ter_rbac.authorization.k8s.io_v1_role.yaml | 30 + ...ocumentdb.services.k8s.aws_dbclusters.yaml | 547 ++++++++++++++++++ ...cumentdb.services.k8s.aws_dbinstances.yaml | 451 +++++++++++++++ ...entdb.services.k8s.aws_dbsubnetgroups.yaml | 201 +++++++ .../1.0.1/metadata/annotations.yaml | 15 + .../1.0.1/tests/scorecard/config.yaml | 50 ++ 10 files changed, 1659 insertions(+) create mode 100644 operators/ack-documentdb-controller/1.0.1/bundle.Dockerfile create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-controller.clusterserviceversion.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-metrics-service_v1_service.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-reader_rbac.authorization.k8s.io_v1_role.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-writer_rbac.authorization.k8s.io_v1_role.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbclusters.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbinstances.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbsubnetgroups.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/metadata/annotations.yaml create mode 100644 operators/ack-documentdb-controller/1.0.1/tests/scorecard/config.yaml diff --git a/operators/ack-documentdb-controller/1.0.1/bundle.Dockerfile b/operators/ack-documentdb-controller/1.0.1/bundle.Dockerfile new file mode 100644 index 00000000000..4ee789c01cf --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/bundle.Dockerfile @@ -0,0 +1,21 @@ +FROM scratch + +# Core bundle labels. +LABEL operators.operatorframework.io.bundle.mediatype.v1=registry+v1 +LABEL operators.operatorframework.io.bundle.manifests.v1=manifests/ +LABEL operators.operatorframework.io.bundle.metadata.v1=metadata/ +LABEL operators.operatorframework.io.bundle.package.v1=ack-documentdb-controller +LABEL operators.operatorframework.io.bundle.channels.v1=alpha +LABEL operators.operatorframework.io.bundle.channel.default.v1=alpha +LABEL operators.operatorframework.io.metrics.builder=operator-sdk-v1.28.0 +LABEL operators.operatorframework.io.metrics.mediatype.v1=metrics+v1 +LABEL operators.operatorframework.io.metrics.project_layout=unknown + +# Labels for testing. +LABEL operators.operatorframework.io.test.mediatype.v1=scorecard+v1 +LABEL operators.operatorframework.io.test.config.v1=tests/scorecard/ + +# Copy files to locations specified by labels. +COPY bundle/manifests /manifests/ +COPY bundle/metadata /metadata/ +COPY bundle/tests/scorecard /tests/scorecard/ diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-controller.clusterserviceversion.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-controller.clusterserviceversion.yaml new file mode 100644 index 00000000000..99d797c4bfd --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-controller.clusterserviceversion.yaml @@ -0,0 +1,312 @@ +apiVersion: operators.coreos.com/v1alpha1 +kind: ClusterServiceVersion +metadata: + annotations: + alm-examples: |- + [ + { + "apiVersion": "documentdb.services.k8s.aws/v1alpha1", + "kind": "DBCluster", + "metadata": { + "name": "example" + }, + "spec": {} + }, + { + "apiVersion": "documentdb.services.k8s.aws/v1alpha1", + "kind": "DBInstance", + "metadata": { + "name": "example" + }, + "spec": {} + }, + { + "apiVersion": "documentdb.services.k8s.aws/v1alpha1", + "kind": "DBSubnetGroup", + "metadata": { + "name": "example" + }, + "spec": {} + } + ] + capabilities: Basic Install + categories: Cloud Provider + certified: "false" + containerImage: public.ecr.aws/aws-controllers-k8s/documentdb-controller:1.0.1 + createdAt: "2024-10-12T00:14:13Z" + description: AWS DocumentDB controller is a service controller for managing DocumentDB + resources in Kubernetes + operatorframework.io/suggested-namespace: ack-system + operators.operatorframework.io/builder: operator-sdk-v1.28.0 + operators.operatorframework.io/project_layout: unknown + repository: https://github.com/aws-controllers-k8s + support: Community + labels: + operatorframework.io/arch.amd64: supported + operatorframework.io/arch.arm64: supported + operatorframework.io/os.linux: supported + name: ack-documentdb-controller.v1.0.1 + namespace: placeholder +spec: + apiservicedefinitions: {} + customresourcedefinitions: + owned: + - description: DBCluster represents the state of an AWS documentdb DBCluster resource. + displayName: DBCluster + kind: DBCluster + name: dbclusters.documentdb.services.k8s.aws + version: v1alpha1 + - description: DBInstance represents the state of an AWS documentdb DBInstance + resource. + displayName: DBInstance + kind: DBInstance + name: dbinstances.documentdb.services.k8s.aws + version: v1alpha1 + - description: DBSubnetGroup represents the state of an AWS documentdb DBSubnetGroup + resource. + displayName: DBSubnetGroup + kind: DBSubnetGroup + name: dbsubnetgroups.documentdb.services.k8s.aws + version: v1alpha1 + description: |- + Manage Amazon DocumentDB resources in AWS from within your Kubernetes cluster. + + **About Amazon DocumentDB** + + Amazon DocumentDB (with MongoDB compatibility) is a fast, reliable, and fully managed database service. Amazon DocumentDB makes it easy to set up, operate, and scale MongoDB-compatible databases in the cloud. With Amazon DocumentDB, you can run the same application code and use the same drivers and tools that you use with MongoDB. + + **About the AWS Controllers for Kubernetes** + + This controller is a component of the [AWS Controller for Kubernetes](https://github.com/aws/aws-controllers-k8s) project. This project is currently in **developer preview**. + + **Pre-Installation Steps** + + Please follow the following link: [Red Hat OpenShift](https://aws-controllers-k8s.github.io/community/docs/user-docs/openshift/) + displayName: AWS Controllers for Kubernetes - Amazon DocumentDB + icon: + - base64data: PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz4KPCEtLSBHZW5lcmF0b3I6IEFkb2JlIElsbHVzdHJhdG9yIDE5LjAuMSwgU1ZHIEV4cG9ydCBQbHVnLUluIC4gU1ZHIFZlcnNpb246IDYuMDAgQnVpbGQgMCkgIC0tPgo8c3ZnIHZlcnNpb249IjEuMSIgaWQ9IkxheWVyXzEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgeG1sbnM6eGxpbms9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGxpbmsiIHg9IjBweCIgeT0iMHB4IiB2aWV3Qm94PSIwIDAgMzA0IDE4MiIgc3R5bGU9ImVuYWJsZS1iYWNrZ3JvdW5kOm5ldyAwIDAgMzA0IDE4MjsiIHhtbDpzcGFjZT0icHJlc2VydmUiPgo8c3R5bGUgdHlwZT0idGV4dC9jc3MiPgoJLnN0MHtmaWxsOiMyNTJGM0U7fQoJLnN0MXtmaWxsLXJ1bGU6ZXZlbm9kZDtjbGlwLXJ1bGU6ZXZlbm9kZDtmaWxsOiNGRjk5MDA7fQo8L3N0eWxlPgo8Zz4KCTxwYXRoIGNsYXNzPSJzdDAiIGQ9Ik04Ni40LDY2LjRjMCwzLjcsMC40LDYuNywxLjEsOC45YzAuOCwyLjIsMS44LDQuNiwzLjIsNy4yYzAuNSwwLjgsMC43LDEuNiwwLjcsMi4zYzAsMS0wLjYsMi0xLjksM2wtNi4zLDQuMiAgIGMtMC45LDAuNi0xLjgsMC45LTIuNiwwLjljLTEsMC0yLTAuNS0zLTEuNEM3Ni4yLDkwLDc1LDg4LjQsNzQsODYuOGMtMS0xLjctMi0zLjYtMy4xLTUuOWMtNy44LDkuMi0xNy42LDEzLjgtMjkuNCwxMy44ICAgYy04LjQsMC0xNS4xLTIuNC0yMC03LjJjLTQuOS00LjgtNy40LTExLjItNy40LTE5LjJjMC04LjUsMy0xNS40LDkuMS0yMC42YzYuMS01LjIsMTQuMi03LjgsMjQuNS03LjhjMy40LDAsNi45LDAuMywxMC42LDAuOCAgIGMzLjcsMC41LDcuNSwxLjMsMTEuNSwyLjJ2LTcuM2MwLTcuNi0xLjYtMTIuOS00LjctMTZjLTMuMi0zLjEtOC42LTQuNi0xNi4zLTQuNmMtMy41LDAtNy4xLDAuNC0xMC44LDEuM2MtMy43LDAuOS03LjMsMi0xMC44LDMuNCAgIGMtMS42LDAuNy0yLjgsMS4xLTMuNSwxLjNjLTAuNywwLjItMS4yLDAuMy0xLjYsMC4zYy0xLjQsMC0yLjEtMS0yLjEtMy4xdi00LjljMC0xLjYsMC4yLTIuOCwwLjctMy41YzAuNS0wLjcsMS40LTEuNCwyLjgtMi4xICAgYzMuNS0xLjgsNy43LTMuMywxMi42LTQuNWM0LjktMS4zLDEwLjEtMS45LDE1LjYtMS45YzExLjksMCwyMC42LDIuNywyNi4yLDguMWM1LjUsNS40LDguMywxMy42LDguMywyNC42VjY2LjR6IE00NS44LDgxLjYgICBjMy4zLDAsNi43LTAuNiwxMC4zLTEuOGMzLjYtMS4yLDYuOC0zLjQsOS41LTYuNGMxLjYtMS45LDIuOC00LDMuNC02LjRjMC42LTIuNCwxLTUuMywxLTguN3YtNC4yYy0yLjktMC43LTYtMS4zLTkuMi0xLjcgICBjLTMuMi0wLjQtNi4zLTAuNi05LjQtMC42Yy02LjcsMC0xMS42LDEuMy0xNC45LDRjLTMuMywyLjctNC45LDYuNS00LjksMTEuNWMwLDQuNywxLjIsOC4yLDMuNywxMC42ICAgQzM3LjcsODAuNCw0MS4yLDgxLjYsNDUuOCw4MS42eiBNMTI2LjEsOTIuNGMtMS44LDAtMy0wLjMtMy44LTFjLTAuOC0wLjYtMS41LTItMi4xLTMuOUw5Ni43LDEwLjJjLTAuNi0yLTAuOS0zLjMtMC45LTQgICBjMC0xLjYsMC44LTIuNSwyLjQtMi41aDkuOGMxLjksMCwzLjIsMC4zLDMuOSwxYzAuOCwwLjYsMS40LDIsMiwzLjlsMTYuOCw2Ni4ybDE1LjYtNjYuMmMwLjUtMiwxLjEtMy4zLDEuOS0zLjljMC44LTAuNiwyLjItMSw0LTEgICBoOGMxLjksMCwzLjIsMC4zLDQsMWMwLjgsMC42LDEuNSwyLDEuOSwzLjlsMTUuOCw2N2wxNy4zLTY3YzAuNi0yLDEuMy0zLjMsMi0zLjljMC44LTAuNiwyLjEtMSwzLjktMWg5LjNjMS42LDAsMi41LDAuOCwyLjUsMi41ICAgYzAsMC41LTAuMSwxLTAuMiwxLjZjLTAuMSwwLjYtMC4zLDEuNC0wLjcsMi41bC0yNC4xLDc3LjNjLTAuNiwyLTEuMywzLjMtMi4xLDMuOWMtMC44LDAuNi0yLjEsMS0zLjgsMWgtOC42Yy0xLjksMC0zLjItMC4zLTQtMSAgIGMtMC44LTAuNy0xLjUtMi0xLjktNEwxNTYsMjNsLTE1LjQsNjQuNGMtMC41LDItMS4xLDMuMy0xLjksNGMtMC44LDAuNy0yLjIsMS00LDFIMTI2LjF6IE0yNTQuNiw5NS4xYy01LjIsMC0xMC40LTAuNi0xNS40LTEuOCAgIGMtNS0xLjItOC45LTIuNS0xMS41LTRjLTEuNi0wLjktMi43LTEuOS0zLjEtMi44Yy0wLjQtMC45LTAuNi0xLjktMC42LTIuOHYtNS4xYzAtMi4xLDAuOC0zLjEsMi4zLTMuMWMwLjYsMCwxLjIsMC4xLDEuOCwwLjMgICBjMC42LDAuMiwxLjUsMC42LDIuNSwxYzMuNCwxLjUsNy4xLDIuNywxMSwzLjVjNCwwLjgsNy45LDEuMiwxMS45LDEuMmM2LjMsMCwxMS4yLTEuMSwxNC42LTMuM2MzLjQtMi4yLDUuMi01LjQsNS4yLTkuNSAgIGMwLTIuOC0wLjktNS4xLTIuNy03Yy0xLjgtMS45LTUuMi0zLjYtMTAuMS01LjJMMjQ2LDUyYy03LjMtMi4zLTEyLjctNS43LTE2LTEwLjJjLTMuMy00LjQtNS05LjMtNS0xNC41YzAtNC4yLDAuOS03LjksMi43LTExLjEgICBjMS44LTMuMiw0LjItNiw3LjItOC4yYzMtMi4zLDYuNC00LDEwLjQtNS4yYzQtMS4yLDguMi0xLjcsMTIuNi0xLjdjMi4yLDAsNC41LDAuMSw2LjcsMC40YzIuMywwLjMsNC40LDAuNyw2LjUsMS4xICAgYzIsMC41LDMuOSwxLDUuNywxLjZjMS44LDAuNiwzLjIsMS4yLDQuMiwxLjhjMS40LDAuOCwyLjQsMS42LDMsMi41YzAuNiwwLjgsMC45LDEuOSwwLjksMy4zdjQuN2MwLDIuMS0wLjgsMy4yLTIuMywzLjIgICBjLTAuOCwwLTIuMS0wLjQtMy44LTEuMmMtNS43LTIuNi0xMi4xLTMuOS0xOS4yLTMuOWMtNS43LDAtMTAuMiwwLjktMTMuMywyLjhjLTMuMSwxLjktNC43LDQuOC00LjcsOC45YzAsMi44LDEsNS4yLDMsNy4xICAgYzIsMS45LDUuNywzLjgsMTEsNS41bDE0LjIsNC41YzcuMiwyLjMsMTIuNCw1LjUsMTUuNSw5LjZjMy4xLDQuMSw0LjYsOC44LDQuNiwxNGMwLDQuMy0wLjksOC4yLTIuNiwxMS42ICAgYy0xLjgsMy40LTQuMiw2LjQtNy4zLDguOGMtMy4xLDIuNS02LjgsNC4zLTExLjEsNS42QzI2NC40LDk0LjQsMjU5LjcsOTUuMSwyNTQuNiw5NS4xeiIvPgoJPGc+CgkJPHBhdGggY2xhc3M9InN0MSIgZD0iTTI3My41LDE0My43Yy0zMi45LDI0LjMtODAuNywzNy4yLTEyMS44LDM3LjJjLTU3LjYsMC0xMDkuNS0yMS4zLTE0OC43LTU2LjdjLTMuMS0yLjgtMC4zLTYuNiwzLjQtNC40ICAgIGM0Mi40LDI0LjYsOTQuNywzOS41LDE0OC44LDM5LjVjMzYuNSwwLDc2LjYtNy42LDExMy41LTIzLjJDMjc0LjIsMTMzLjYsMjc4LjksMTM5LjcsMjczLjUsMTQzLjd6Ii8+CgkJPHBhdGggY2xhc3M9InN0MSIgZD0iTTI4Ny4yLDEyOC4xYy00LjItNS40LTI3LjgtMi42LTM4LjUtMS4zYy0zLjIsMC40LTMuNy0yLjQtMC44LTQuNWMxOC44LTEzLjIsNDkuNy05LjQsNTMuMy01ICAgIGMzLjYsNC41LTEsMzUuNC0xOC42LDUwLjJjLTIuNywyLjMtNS4zLDEuMS00LjEtMS45QzI4Mi41LDE1NS43LDI5MS40LDEzMy40LDI4Ny4yLDEyOC4xeiIvPgoJPC9nPgo8L2c+Cjwvc3ZnPg== + mediatype: image/svg+xml + install: + spec: + clusterPermissions: + - rules: + - apiGroups: + - "" + resources: + - configmaps + - secrets + verbs: + - get + - list + - patch + - watch + - apiGroups: + - "" + resources: + - namespaces + verbs: + - get + - list + - watch + - apiGroups: + - documentdb.services.k8s.aws + resources: + - dbclusters + - dbinstances + - dbsubnetgroups + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - documentdb.services.k8s.aws + resources: + - dbclusters/status + - dbinstances/status + - dbsubnetgroups/status + verbs: + - get + - patch + - update + - apiGroups: + - ec2.services.k8s.aws + resources: + - securitygroups + - securitygroups/status + - subnets + - subnets/status + verbs: + - get + - list + - apiGroups: + - kms.services.k8s.aws + resources: + - keys + - keys/status + verbs: + - get + - list + - apiGroups: + - services.k8s.aws + resources: + - adoptedresources + - fieldexports + verbs: + - create + - delete + - get + - list + - patch + - update + - watch + - apiGroups: + - services.k8s.aws + resources: + - adoptedresources/status + - fieldexports/status + verbs: + - get + - patch + - update + serviceAccountName: ack-documentdb-controller + deployments: + - label: + app.kubernetes.io/name: ack-documentdb-controller + app.kubernetes.io/part-of: ack-system + name: ack-documentdb-controller + spec: + replicas: 1 + selector: + matchLabels: + app.kubernetes.io/name: ack-documentdb-controller + strategy: {} + template: + metadata: + labels: + app.kubernetes.io/name: ack-documentdb-controller + spec: + containers: + - args: + - --aws-region + - $(AWS_REGION) + - --aws-endpoint-url + - $(AWS_ENDPOINT_URL) + - --enable-development-logging=$(ACK_ENABLE_DEVELOPMENT_LOGGING) + - --log-level + - $(ACK_LOG_LEVEL) + - --resource-tags + - $(ACK_RESOURCE_TAGS) + - --watch-namespace + - $(ACK_WATCH_NAMESPACE) + - --enable-leader-election=$(ENABLE_LEADER_ELECTION) + - --leader-election-namespace + - $(LEADER_ELECTION_NAMESPACE) + - --reconcile-default-max-concurrent-syncs + - $(RECONCILE_DEFAULT_MAX_CONCURRENT_SYNCS) + command: + - ./bin/controller + env: + - name: ACK_SYSTEM_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace + envFrom: + - configMapRef: + name: ack-documentdb-user-config + optional: false + - secretRef: + name: ack-documentdb-user-secrets + optional: true + image: public.ecr.aws/aws-controllers-k8s/documentdb-controller:1.0.1 + livenessProbe: + httpGet: + path: /healthz + port: 8081 + initialDelaySeconds: 15 + periodSeconds: 20 + name: controller + ports: + - containerPort: 8080 + name: http + readinessProbe: + httpGet: + path: /readyz + port: 8081 + initialDelaySeconds: 5 + periodSeconds: 10 + resources: + limits: + cpu: 100m + memory: 300Mi + requests: + cpu: 100m + memory: 200Mi + securityContext: + allowPrivilegeEscalation: false + capabilities: + drop: + - ALL + privileged: false + runAsNonRoot: true + dnsPolicy: ClusterFirst + securityContext: + seccompProfile: + type: RuntimeDefault + serviceAccountName: ack-documentdb-controller + terminationGracePeriodSeconds: 10 + permissions: + - rules: + - apiGroups: + - coordination.k8s.io + resources: + - leases + verbs: + - get + - list + - watch + - create + - update + - patch + - delete + - apiGroups: + - "" + resources: + - events + verbs: + - create + - patch + serviceAccountName: ack-documentdb-controller + strategy: deployment + installModes: + - supported: true + type: OwnNamespace + - supported: true + type: SingleNamespace + - supported: true + type: MultiNamespace + - supported: true + type: AllNamespaces + keywords: + - documentdb + - aws + - amazon + - ack + links: + - name: AWS Controllers for Kubernetes + url: https://github.com/aws-controllers-k8s/community + - name: Documentation + url: https://aws-controllers-k8s.github.io/community/ + - name: Amazon DocumentDB Developer Resources + url: https://aws.amazon.com/documentdb/resources/ + maintainers: + - email: ack-maintainers@amazon.com + name: documentdb maintainer team + maturity: alpha + provider: + name: Amazon, Inc. + url: https://aws.amazon.com + version: 1.0.1 diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-metrics-service_v1_service.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-metrics-service_v1_service.yaml new file mode 100644 index 00000000000..168b5366795 --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-metrics-service_v1_service.yaml @@ -0,0 +1,16 @@ +apiVersion: v1 +kind: Service +metadata: + creationTimestamp: null + name: ack-documentdb-metrics-service +spec: + ports: + - name: metricsport + port: 8080 + protocol: TCP + targetPort: http + selector: + app.kubernetes.io/name: ack-documentdb-controller + type: NodePort +status: + loadBalancer: {} diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-reader_rbac.authorization.k8s.io_v1_role.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-reader_rbac.authorization.k8s.io_v1_role.yaml new file mode 100644 index 00000000000..35b37466133 --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-reader_rbac.authorization.k8s.io_v1_role.yaml @@ -0,0 +1,16 @@ +apiVersion: rbac.authorization.k8s.io/v1 +kind: Role +metadata: + creationTimestamp: null + name: ack-documentdb-reader +rules: +- apiGroups: + - documentdb.services.k8s.aws + resources: + - dbclusters + - dbinstances + - dbsubnetgroups + verbs: + - get + - list + - watch diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-writer_rbac.authorization.k8s.io_v1_role.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-writer_rbac.authorization.k8s.io_v1_role.yaml new file mode 100644 index 00000000000..bc853b4068c --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/ack-documentdb-writer_rbac.authorization.k8s.io_v1_role.yaml @@ -0,0 +1,30 @@ +apiVersion: rbac.authorization.k8s.io/v1 +kind: Role +metadata: + creationTimestamp: null + name: ack-documentdb-writer +rules: +- apiGroups: + - documentdb.services.k8s.aws + resources: + - dbclusters + - dbinstances + - dbsubnetgroups + verbs: + - create + - delete + - get + - list + - patch + - update + - watch +- apiGroups: + - documentdb.services.k8s.aws + resources: + - dbclusters + - dbinstances + - dbsubnetgroups + verbs: + - get + - patch + - update diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbclusters.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbclusters.yaml new file mode 100644 index 00000000000..62977fd8bfb --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbclusters.yaml @@ -0,0 +1,547 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.2 + creationTimestamp: null + name: dbclusters.documentdb.services.k8s.aws +spec: + group: documentdb.services.k8s.aws + names: + kind: DBCluster + listKind: DBClusterList + plural: dbclusters + singular: dbcluster + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: DBCluster is the Schema for the DBClusters API + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: |- + DBClusterSpec defines the desired state of DBCluster. + + Detailed information about a cluster. + properties: + availabilityZones: + description: |- + A list of Amazon EC2 Availability Zones that instances in the cluster can + be created in. + items: + type: string + type: array + backupRetentionPeriod: + description: |- + The number of days for which automated backups are retained. You must specify + a minimum value of 1. + + Default: 1 + + Constraints: + + * Must be a value from 1 to 35. + format: int64 + type: integer + dbClusterIdentifier: + description: |- + The cluster identifier. This parameter is stored as a lowercase string. + + Constraints: + + * Must contain from 1 to 63 letters, numbers, or hyphens. + + * The first character must be a letter. + + * Cannot end with a hyphen or contain two consecutive hyphens. + + Example: my-cluster + type: string + dbClusterParameterGroupName: + description: The name of the cluster parameter group to associate + with this cluster. + type: string + dbSubnetGroupName: + description: |- + A subnet group to associate with this cluster. + + Constraints: Must match the name of an existing DBSubnetGroup. Must not be + default. + + Example: mySubnetgroup + type: string + dbSubnetGroupRef: + description: "AWSResourceReferenceWrapper provides a wrapper around + *AWSResourceReference\ntype to provide more user friendly syntax + for references using 'from' field\nEx:\nAPIIDRef:\n\n\tfrom:\n\t + \ name: my-api" + properties: + from: + description: |- + AWSResourceReference provides all the values necessary to reference another + k8s resource for finding the identifier(Id/ARN/Name) + properties: + name: + type: string + namespace: + type: string + type: object + type: object + deletionProtection: + description: |- + Specifies whether this cluster can be deleted. If DeletionProtection is enabled, + the cluster cannot be deleted unless it is modified and DeletionProtection + is disabled. DeletionProtection protects clusters from being accidentally + deleted. + type: boolean + destinationRegion: + description: DestinationRegion is used for presigning the request + to a given region. + type: string + enableCloudwatchLogsExports: + description: |- + A list of log types that need to be enabled for exporting to Amazon CloudWatch + Logs. You can enable audit logs or profiler logs. For more information, see + Auditing Amazon DocumentDB Events (https://docs.aws.amazon.com/documentdb/latest/developerguide/event-auditing.html) + and Profiling Amazon DocumentDB Operations (https://docs.aws.amazon.com/documentdb/latest/developerguide/profiling.html). + items: + type: string + type: array + engine: + description: |- + The name of the database engine to be used for this cluster. + + Valid values: docdb + type: string + engineVersion: + description: |- + The version number of the database engine to use. The --engine-version will + default to the latest major engine version. For production workloads, we + recommend explicitly declaring this parameter with the intended major engine + version. + type: string + globalClusterIdentifier: + description: The cluster identifier of the new global cluster. + type: string + kmsKeyID: + description: |- + The KMS key identifier for an encrypted cluster. + + The KMS key identifier is the Amazon Resource Name (ARN) for the KMS encryption + key. If you are creating a cluster using the same Amazon Web Services account + that owns the KMS encryption key that is used to encrypt the new cluster, + you can use the KMS key alias instead of the ARN for the KMS encryption key. + + If an encryption key is not specified in KmsKeyId: + + * If the StorageEncrypted parameter is true, Amazon DocumentDB uses your + default encryption key. + + KMS creates the default encryption key for your Amazon Web Services account. + Your Amazon Web Services account has a different default encryption key for + each Amazon Web Services Regions. + type: string + kmsKeyRef: + description: "AWSResourceReferenceWrapper provides a wrapper around + *AWSResourceReference\ntype to provide more user friendly syntax + for references using 'from' field\nEx:\nAPIIDRef:\n\n\tfrom:\n\t + \ name: my-api" + properties: + from: + description: |- + AWSResourceReference provides all the values necessary to reference another + k8s resource for finding the identifier(Id/ARN/Name) + properties: + name: + type: string + namespace: + type: string + type: object + type: object + masterUserPassword: + description: |- + The password for the master database user. This password can contain any + printable ASCII character except forward slash (/), double quote ("), or + the "at" symbol (@). + + Constraints: Must contain from 8 to 100 characters. + properties: + key: + description: Key is the key within the secret + type: string + name: + description: name is unique within a namespace to reference a + secret resource. + type: string + namespace: + description: namespace defines the space within which the secret + name must be unique. + type: string + required: + - key + type: object + x-kubernetes-map-type: atomic + masterUsername: + description: |- + The name of the master user for the cluster. + + Constraints: + + * Must be from 1 to 63 letters or numbers. + + * The first character must be a letter. + + * Cannot be a reserved word for the chosen database engine. + type: string + port: + description: The port number on which the instances in the cluster + accept connections. + format: int64 + type: integer + preSignedURL: + description: Not currently supported. + type: string + preferredBackupWindow: + description: |- + The daily time range during which automated backups are created if automated + backups are enabled using the BackupRetentionPeriod parameter. + + The default is a 30-minute window selected at random from an 8-hour block + of time for each Amazon Web Services Region. + + Constraints: + + * Must be in the format hh24:mi-hh24:mi. + + * Must be in Universal Coordinated Time (UTC). + + * Must not conflict with the preferred maintenance window. + + * Must be at least 30 minutes. + type: string + preferredMaintenanceWindow: + description: |- + The weekly time range during which system maintenance can occur, in Universal + Coordinated Time (UTC). + + Format: ddd:hh24:mi-ddd:hh24:mi + + The default is a 30-minute window selected at random from an 8-hour block + of time for each Amazon Web Services Region, occurring on a random day of + the week. + + Valid days: Mon, Tue, Wed, Thu, Fri, Sat, Sun + + Constraints: Minimum 30-minute window. + type: string + snapshotIdentifier: + description: |- + The identifier for the snapshot or cluster snapshot to restore from. + + You can use either the name or the Amazon Resource Name (ARN) to specify + a cluster snapshot. However, you can use only the ARN to specify a snapshot. + + Constraints: + + * Must match the identifier of an existing snapshot. + type: string + sourceRegion: + description: |- + SourceRegion is the source region where the resource exists. This is not + sent over the wire and is only used for presigning. This value should always + have the same region as the source ARN. + type: string + storageEncrypted: + description: Specifies whether the cluster is encrypted. + type: boolean + storageType: + description: |- + The storage type to associate with the DB cluster. + + For information on storage types for Amazon DocumentDB clusters, see Cluster + storage configurations in the Amazon DocumentDB Developer Guide. + + Valid values for storage type - standard | iopt1 + + Default value is standard + + When you create a DocumentDB DB cluster with the storage type set to iopt1, + the storage type is returned in the response. The storage type isn't returned + when you set it to standard. + type: string + tags: + description: The tags to be assigned to the cluster. + items: + description: |- + Metadata assigned to an Amazon DocumentDB resource consisting of a key-value + pair. + properties: + key: + type: string + value: + type: string + type: object + type: array + vpcSecurityGroupIDs: + description: A list of EC2 VPC security groups to associate with this + cluster. + items: + type: string + type: array + vpcSecurityGroupRefs: + items: + description: "AWSResourceReferenceWrapper provides a wrapper around + *AWSResourceReference\ntype to provide more user friendly syntax + for references using 'from' field\nEx:\nAPIIDRef:\n\n\tfrom:\n\t + \ name: my-api" + properties: + from: + description: |- + AWSResourceReference provides all the values necessary to reference another + k8s resource for finding the identifier(Id/ARN/Name) + properties: + name: + type: string + namespace: + type: string + type: object + type: object + type: array + required: + - dbClusterIdentifier + - engine + type: object + status: + description: DBClusterStatus defines the observed state of DBCluster + properties: + ackResourceMetadata: + description: |- + All CRs managed by ACK have a common `Status.ACKResourceMetadata` member + that is used to contain resource sync state, account ownership, + constructed ARN for the resource + properties: + arn: + description: |- + ARN is the Amazon Resource Name for the resource. This is a + globally-unique identifier and is set only by the ACK service controller + once the controller has orchestrated the creation of the resource OR + when it has verified that an "adopted" resource (a resource where the + ARN annotation was set by the Kubernetes user on the CR) exists and + matches the supplied CR's Spec field values. + https://github.com/aws/aws-controllers-k8s/issues/270 + type: string + ownerAccountID: + description: |- + OwnerAccountID is the AWS Account ID of the account that owns the + backend AWS service API resource. + type: string + region: + description: Region is the AWS region in which the resource exists + or will exist. + type: string + required: + - ownerAccountID + - region + type: object + associatedRoles: + description: |- + Provides a list of the Identity and Access Management (IAM) roles that are + associated with the cluster. (IAM) roles that are associated with a cluster + grant permission for the cluster to access other Amazon Web Services services + on your behalf. + items: + description: |- + Describes an Identity and Access Management (IAM) role that is associated + with a cluster. + properties: + roleARN: + type: string + status: + type: string + type: object + type: array + cloneGroupID: + description: Identifies the clone group to which the DB cluster is + associated. + type: string + clusterCreateTime: + description: |- + Specifies the time when the cluster was created, in Universal Coordinated + Time (UTC). + format: date-time + type: string + conditions: + description: |- + All CRS managed by ACK have a common `Status.Conditions` member that + contains a collection of `ackv1alpha1.Condition` objects that describe + the various terminal states of the CR and its backend AWS service API + resource + items: + description: |- + Condition is the common struct used by all CRDs managed by ACK service + controllers to indicate terminal states of the CR and its backend AWS + service API resource + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + format: date-time + type: string + message: + description: A human readable message indicating details about + the transition. + type: string + reason: + description: The reason for the condition's last transition. + type: string + status: + description: Status of the condition, one of True, False, Unknown. + type: string + type: + description: Type is the type of the Condition + type: string + required: + - status + - type + type: object + type: array + dbClusterMembers: + description: Provides the list of instances that make up the cluster. + items: + description: Contains information about an instance that is part + of a cluster. + properties: + dbClusterParameterGroupStatus: + type: string + dbInstanceIdentifier: + type: string + isClusterWriter: + type: boolean + promotionTier: + format: int64 + type: integer + type: object + type: array + dbClusterParameterGroup: + description: Specifies the name of the cluster parameter group for + the cluster. + type: string + dbClusterResourceID: + description: |- + The Amazon Web Services Region-unique, immutable identifier for the cluster. + This identifier is found in CloudTrail log entries whenever the KMS key for + the cluster is accessed. + type: string + dbSubnetGroup: + description: |- + Specifies information on the subnet group that is associated with the cluster, + including the name, description, and subnets in the subnet group. + type: string + earliestRestorableTime: + description: |- + The earliest time to which a database can be restored with point-in-time + restore. + format: date-time + type: string + enabledCloudwatchLogsExports: + description: |- + A list of log types that this cluster is configured to export to Amazon CloudWatch + Logs. + items: + type: string + type: array + endpoint: + description: Specifies the connection endpoint for the primary instance + of the cluster. + type: string + hostedZoneID: + description: Specifies the ID that Amazon Route 53 assigns when you + create a hosted zone. + type: string + latestRestorableTime: + description: |- + Specifies the latest time to which a database can be restored with point-in-time + restore. + format: date-time + type: string + multiAZ: + description: Specifies whether the cluster has instances in multiple + Availability Zones. + type: boolean + percentProgress: + description: Specifies the progress of the operation as a percentage. + type: string + readReplicaIdentifiers: + description: |- + Contains one or more identifiers of the secondary clusters that are associated + with this cluster. + items: + type: string + type: array + readerEndpoint: + description: |- + The reader endpoint for the cluster. The reader endpoint for a cluster load + balances connections across the Amazon DocumentDB replicas that are available + in a cluster. As clients request new connections to the reader endpoint, + Amazon DocumentDB distributes the connection requests among the Amazon DocumentDB + replicas in the cluster. This functionality can help balance your read workload + across multiple Amazon DocumentDB replicas in your cluster. + + If a failover occurs, and the Amazon DocumentDB replica that you are connected + to is promoted to be the primary instance, your connection is dropped. To + continue sending your read workload to other Amazon DocumentDB replicas in + the cluster, you can then reconnect to the reader endpoint. + type: string + replicationSourceIdentifier: + description: |- + Contains the identifier of the source cluster if this cluster is a secondary + cluster. + type: string + status: + description: Specifies the current state of this cluster. + type: string + vpcSecurityGroups: + description: |- + Provides a list of virtual private cloud (VPC) security groups that the cluster + belongs to. + items: + description: |- + Used as a response element for queries on virtual private cloud (VPC) security + group membership. + properties: + status: + type: string + vpcSecurityGroupID: + type: string + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbinstances.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbinstances.yaml new file mode 100644 index 00000000000..ccc12adc22f --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbinstances.yaml @@ -0,0 +1,451 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.2 + creationTimestamp: null + name: dbinstances.documentdb.services.k8s.aws +spec: + group: documentdb.services.k8s.aws + names: + kind: DBInstance + listKind: DBInstanceList + plural: dbinstances + singular: dbinstance + scope: Namespaced + versions: + - additionalPrinterColumns: + - jsonPath: .status.dbInstanceStatus + name: STATUS + type: string + name: v1alpha1 + schema: + openAPIV3Schema: + description: DBInstance is the Schema for the DBInstances API + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: |- + DBInstanceSpec defines the desired state of DBInstance. + + Detailed information about an instance. + properties: + autoMinorVersionUpgrade: + description: |- + This parameter does not apply to Amazon DocumentDB. Amazon DocumentDB does + not perform minor version upgrades regardless of the value set. + + Default: false + type: boolean + availabilityZone: + description: |- + The Amazon EC2 Availability Zone that the instance is created in. + + Default: A random, system-chosen Availability Zone in the endpoint's Amazon + Web Services Region. + + Example: us-east-1d + type: string + caCertificateIdentifier: + description: |- + The CA certificate identifier to use for the DB instance's server certificate. + + For more information, see Updating Your Amazon DocumentDB TLS Certificates + (https://docs.aws.amazon.com/documentdb/latest/developerguide/ca_cert_rotation.html) + and Encrypting Data in Transit (https://docs.aws.amazon.com/documentdb/latest/developerguide/security.encryption.ssl.html) + in the Amazon DocumentDB Developer Guide. + type: string + copyTagsToSnapshot: + description: |- + A value that indicates whether to copy tags from the DB instance to snapshots + of the DB instance. By default, tags are not copied. + type: boolean + dbClusterIdentifier: + description: The identifier of the cluster that the instance will + belong to. + type: string + dbInstanceClass: + description: The compute and memory capacity of the instance; for + example, db.r5.large. + type: string + dbInstanceIdentifier: + description: |- + The instance identifier. This parameter is stored as a lowercase string. + + Constraints: + + * Must contain from 1 to 63 letters, numbers, or hyphens. + + * The first character must be a letter. + + * Cannot end with a hyphen or contain two consecutive hyphens. + + Example: mydbinstance + type: string + engine: + description: |- + The name of the database engine to be used for this instance. + + Valid value: docdb + type: string + performanceInsightsEnabled: + description: |- + A value that indicates whether to enable Performance Insights for the DB + Instance. For more information, see Using Amazon Performance Insights (https://docs.aws.amazon.com/documentdb/latest/developerguide/performance-insights.html). + type: boolean + performanceInsightsKMSKeyID: + description: |- + The KMS key identifier for encryption of Performance Insights data. + + The KMS key identifier is the key ARN, key ID, alias ARN, or alias name for + the KMS key. + + If you do not specify a value for PerformanceInsightsKMSKeyId, then Amazon + DocumentDB uses your default KMS key. There is a default KMS key for your + Amazon Web Services account. Your Amazon Web Services account has a different + default KMS key for each Amazon Web Services region. + type: string + performanceInsightsKMSKeyRef: + description: "AWSResourceReferenceWrapper provides a wrapper around + *AWSResourceReference\ntype to provide more user friendly syntax + for references using 'from' field\nEx:\nAPIIDRef:\n\n\tfrom:\n\t + \ name: my-api" + properties: + from: + description: |- + AWSResourceReference provides all the values necessary to reference another + k8s resource for finding the identifier(Id/ARN/Name) + properties: + name: + type: string + namespace: + type: string + type: object + type: object + preferredMaintenanceWindow: + description: |- + The time range each week during which system maintenance can occur, in Universal + Coordinated Time (UTC). + + Format: ddd:hh24:mi-ddd:hh24:mi + + The default is a 30-minute window selected at random from an 8-hour block + of time for each Amazon Web Services Region, occurring on a random day of + the week. + + Valid days: Mon, Tue, Wed, Thu, Fri, Sat, Sun + + Constraints: Minimum 30-minute window. + type: string + promotionTier: + description: |- + A value that specifies the order in which an Amazon DocumentDB replica is + promoted to the primary instance after a failure of the existing primary + instance. + + Default: 1 + + Valid values: 0-15 + format: int64 + type: integer + tags: + description: |- + The tags to be assigned to the instance. You can assign up to 10 tags to + an instance. + items: + description: |- + Metadata assigned to an Amazon DocumentDB resource consisting of a key-value + pair. + properties: + key: + type: string + value: + type: string + type: object + type: array + required: + - dbClusterIdentifier + - dbInstanceClass + - dbInstanceIdentifier + - engine + type: object + status: + description: DBInstanceStatus defines the observed state of DBInstance + properties: + ackResourceMetadata: + description: |- + All CRs managed by ACK have a common `Status.ACKResourceMetadata` member + that is used to contain resource sync state, account ownership, + constructed ARN for the resource + properties: + arn: + description: |- + ARN is the Amazon Resource Name for the resource. This is a + globally-unique identifier and is set only by the ACK service controller + once the controller has orchestrated the creation of the resource OR + when it has verified that an "adopted" resource (a resource where the + ARN annotation was set by the Kubernetes user on the CR) exists and + matches the supplied CR's Spec field values. + https://github.com/aws/aws-controllers-k8s/issues/270 + type: string + ownerAccountID: + description: |- + OwnerAccountID is the AWS Account ID of the account that owns the + backend AWS service API resource. + type: string + region: + description: Region is the AWS region in which the resource exists + or will exist. + type: string + required: + - ownerAccountID + - region + type: object + backupRetentionPeriod: + description: Specifies the number of days for which automatic snapshots + are retained. + format: int64 + type: integer + certificateDetails: + description: The details of the DB instance's server certificate. + properties: + cAIdentifier: + type: string + validTill: + format: date-time + type: string + type: object + conditions: + description: |- + All CRS managed by ACK have a common `Status.Conditions` member that + contains a collection of `ackv1alpha1.Condition` objects that describe + the various terminal states of the CR and its backend AWS service API + resource + items: + description: |- + Condition is the common struct used by all CRDs managed by ACK service + controllers to indicate terminal states of the CR and its backend AWS + service API resource + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + format: date-time + type: string + message: + description: A human readable message indicating details about + the transition. + type: string + reason: + description: The reason for the condition's last transition. + type: string + status: + description: Status of the condition, one of True, False, Unknown. + type: string + type: + description: Type is the type of the Condition + type: string + required: + - status + - type + type: object + type: array + dbInstanceStatus: + description: Specifies the current state of this database. + type: string + dbSubnetGroup: + description: |- + Specifies information on the subnet group that is associated with the instance, + including the name, description, and subnets in the subnet group. + properties: + dbSubnetGroupARN: + type: string + dbSubnetGroupDescription: + type: string + dbSubnetGroupName: + type: string + subnetGroupStatus: + type: string + subnets: + items: + description: Detailed information about a subnet. + properties: + subnetAvailabilityZone: + description: Information about an Availability Zone. + properties: + name: + type: string + type: object + subnetIdentifier: + type: string + subnetStatus: + type: string + type: object + type: array + vpcID: + type: string + type: object + dbiResourceID: + description: |- + The Amazon Web Services Region-unique, immutable identifier for the instance. + This identifier is found in CloudTrail log entries whenever the KMS key for + the instance is accessed. + type: string + enabledCloudwatchLogsExports: + description: |- + A list of log types that this instance is configured to export to CloudWatch + Logs. + items: + type: string + type: array + endpoint: + description: Specifies the connection endpoint. + properties: + address: + type: string + hostedZoneID: + type: string + port: + format: int64 + type: integer + type: object + engineVersion: + description: Indicates the database engine version. + type: string + instanceCreateTime: + description: Provides the date and time that the instance was created. + format: date-time + type: string + kmsKeyID: + description: If StorageEncrypted is true, the KMS key identifier for + the encrypted instance. + type: string + latestRestorableTime: + description: |- + Specifies the latest time to which a database can be restored with point-in-time + restore. + format: date-time + type: string + pendingModifiedValues: + description: |- + Specifies that changes to the instance are pending. This element is included + only when changes are pending. Specific changes are identified by subelements. + properties: + allocatedStorage: + format: int64 + type: integer + backupRetentionPeriod: + format: int64 + type: integer + caCertificateIdentifier: + type: string + dbInstanceClass: + type: string + dbInstanceIdentifier: + type: string + dbSubnetGroupName: + type: string + engineVersion: + type: string + iops: + format: int64 + type: integer + licenseModel: + type: string + masterUserPassword: + type: string + multiAZ: + type: boolean + pendingCloudwatchLogsExports: + description: |- + A list of the log types whose configuration is still pending. These log types + are in the process of being activated or deactivated. + properties: + logTypesToDisable: + items: + type: string + type: array + logTypesToEnable: + items: + type: string + type: array + type: object + port: + format: int64 + type: integer + storageType: + type: string + type: object + preferredBackupWindow: + description: |- + Specifies the daily time range during which automated backups are created + if automated backups are enabled, as determined by the BackupRetentionPeriod. + type: string + publiclyAccessible: + description: |- + Not supported. Amazon DocumentDB does not currently support public endpoints. + The value of PubliclyAccessible is always false. + type: boolean + statusInfos: + description: |- + The status of a read replica. If the instance is not a read replica, this + is blank. + items: + description: Provides a list of status information for an instance. + properties: + message: + type: string + normal: + type: boolean + status: + type: string + statusType: + type: string + type: object + type: array + storageEncrypted: + description: Specifies whether or not the instance is encrypted. + type: boolean + vpcSecurityGroups: + description: |- + Provides a list of VPC security group elements that the instance belongs + to. + items: + description: |- + Used as a response element for queries on virtual private cloud (VPC) security + group membership. + properties: + status: + type: string + vpcSecurityGroupID: + type: string + type: object + type: array + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbsubnetgroups.yaml b/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbsubnetgroups.yaml new file mode 100644 index 00000000000..7e8d9ffc152 --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/manifests/documentdb.services.k8s.aws_dbsubnetgroups.yaml @@ -0,0 +1,201 @@ +apiVersion: apiextensions.k8s.io/v1 +kind: CustomResourceDefinition +metadata: + annotations: + controller-gen.kubebuilder.io/version: v0.16.2 + creationTimestamp: null + name: dbsubnetgroups.documentdb.services.k8s.aws +spec: + group: documentdb.services.k8s.aws + names: + kind: DBSubnetGroup + listKind: DBSubnetGroupList + plural: dbsubnetgroups + singular: dbsubnetgroup + scope: Namespaced + versions: + - name: v1alpha1 + schema: + openAPIV3Schema: + description: DBSubnetGroup is the Schema for the DBSubnetGroups API + properties: + apiVersion: + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources + type: string + kind: + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds + type: string + metadata: + type: object + spec: + description: |- + DBSubnetGroupSpec defines the desired state of DBSubnetGroup. + + Detailed information about a subnet group. + properties: + description: + description: The description for the subnet group. + type: string + name: + description: |- + The name for the subnet group. This value is stored as a lowercase string. + + Constraints: Must contain no more than 255 letters, numbers, periods, underscores, + spaces, or hyphens. Must not be default. + + Example: mySubnetgroup + type: string + subnetIDs: + description: The Amazon EC2 subnet IDs for the subnet group. + items: + type: string + type: array + subnetRefs: + items: + description: "AWSResourceReferenceWrapper provides a wrapper around + *AWSResourceReference\ntype to provide more user friendly syntax + for references using 'from' field\nEx:\nAPIIDRef:\n\n\tfrom:\n\t + \ name: my-api" + properties: + from: + description: |- + AWSResourceReference provides all the values necessary to reference another + k8s resource for finding the identifier(Id/ARN/Name) + properties: + name: + type: string + namespace: + type: string + type: object + type: object + type: array + tags: + description: The tags to be assigned to the subnet group. + items: + description: |- + Metadata assigned to an Amazon DocumentDB resource consisting of a key-value + pair. + properties: + key: + type: string + value: + type: string + type: object + type: array + required: + - description + - name + type: object + status: + description: DBSubnetGroupStatus defines the observed state of DBSubnetGroup + properties: + ackResourceMetadata: + description: |- + All CRs managed by ACK have a common `Status.ACKResourceMetadata` member + that is used to contain resource sync state, account ownership, + constructed ARN for the resource + properties: + arn: + description: |- + ARN is the Amazon Resource Name for the resource. This is a + globally-unique identifier and is set only by the ACK service controller + once the controller has orchestrated the creation of the resource OR + when it has verified that an "adopted" resource (a resource where the + ARN annotation was set by the Kubernetes user on the CR) exists and + matches the supplied CR's Spec field values. + https://github.com/aws/aws-controllers-k8s/issues/270 + type: string + ownerAccountID: + description: |- + OwnerAccountID is the AWS Account ID of the account that owns the + backend AWS service API resource. + type: string + region: + description: Region is the AWS region in which the resource exists + or will exist. + type: string + required: + - ownerAccountID + - region + type: object + conditions: + description: |- + All CRS managed by ACK have a common `Status.Conditions` member that + contains a collection of `ackv1alpha1.Condition` objects that describe + the various terminal states of the CR and its backend AWS service API + resource + items: + description: |- + Condition is the common struct used by all CRDs managed by ACK service + controllers to indicate terminal states of the CR and its backend AWS + service API resource + properties: + lastTransitionTime: + description: Last time the condition transitioned from one status + to another. + format: date-time + type: string + message: + description: A human readable message indicating details about + the transition. + type: string + reason: + description: The reason for the condition's last transition. + type: string + status: + description: Status of the condition, one of True, False, Unknown. + type: string + type: + description: Type is the type of the Condition + type: string + required: + - status + - type + type: object + type: array + subnetGroupStatus: + description: Provides the status of the subnet group. + type: string + subnets: + description: Detailed information about one or more subnets within + a subnet group. + items: + description: Detailed information about a subnet. + properties: + subnetAvailabilityZone: + description: Information about an Availability Zone. + properties: + name: + type: string + type: object + subnetIdentifier: + type: string + subnetStatus: + type: string + type: object + type: array + vpcID: + description: Provides the virtual private cloud (VPC) ID of the subnet + group. + type: string + type: object + type: object + served: true + storage: true + subresources: + status: {} +status: + acceptedNames: + kind: "" + plural: "" + conditions: null + storedVersions: null diff --git a/operators/ack-documentdb-controller/1.0.1/metadata/annotations.yaml b/operators/ack-documentdb-controller/1.0.1/metadata/annotations.yaml new file mode 100644 index 00000000000..1e51e590d3f --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/metadata/annotations.yaml @@ -0,0 +1,15 @@ +annotations: + # Core bundle annotations. + operators.operatorframework.io.bundle.mediatype.v1: registry+v1 + operators.operatorframework.io.bundle.manifests.v1: manifests/ + operators.operatorframework.io.bundle.metadata.v1: metadata/ + operators.operatorframework.io.bundle.package.v1: ack-documentdb-controller + operators.operatorframework.io.bundle.channels.v1: alpha + operators.operatorframework.io.bundle.channel.default.v1: alpha + operators.operatorframework.io.metrics.builder: operator-sdk-v1.28.0 + operators.operatorframework.io.metrics.mediatype.v1: metrics+v1 + operators.operatorframework.io.metrics.project_layout: unknown + + # Annotations for testing. + operators.operatorframework.io.test.mediatype.v1: scorecard+v1 + operators.operatorframework.io.test.config.v1: tests/scorecard/ diff --git a/operators/ack-documentdb-controller/1.0.1/tests/scorecard/config.yaml b/operators/ack-documentdb-controller/1.0.1/tests/scorecard/config.yaml new file mode 100644 index 00000000000..382ddefd156 --- /dev/null +++ b/operators/ack-documentdb-controller/1.0.1/tests/scorecard/config.yaml @@ -0,0 +1,50 @@ +apiVersion: scorecard.operatorframework.io/v1alpha3 +kind: Configuration +metadata: + name: config +stages: +- parallel: true + tests: + - entrypoint: + - scorecard-test + - basic-check-spec + image: quay.io/operator-framework/scorecard-test:v1.7.1 + labels: + suite: basic + test: basic-check-spec-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-bundle-validation + image: quay.io/operator-framework/scorecard-test:v1.7.1 + labels: + suite: olm + test: olm-bundle-validation-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-crds-have-validation + image: quay.io/operator-framework/scorecard-test:v1.7.1 + labels: + suite: olm + test: olm-crds-have-validation-test + storage: + spec: + mountPath: {} + - entrypoint: + - scorecard-test + - olm-spec-descriptors + image: quay.io/operator-framework/scorecard-test:v1.7.1 + labels: + suite: olm + test: olm-spec-descriptors-test + storage: + spec: + mountPath: {} +storage: + spec: + mountPath: {}